Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x86) Version:07-10-2015
Exécuté par Jean-Claude (administrateur) sur PC-DE-JEAN-CLAU (08-10-2015 15:02:28)
Exécuté depuis C:\Users\Jean-Claude\Downloads
Profils chargés: Jean-Claude (Profils disponibles: Jean-Claude)
Platform: Microsoft® Windows Vista™ Édition Familiale Premium Service Pack 2 (X86) Langue: Français (France)
Internet Explorer Version 9 (Navigateur par défaut: FF)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(Microsoft Corporation) C:\Windows\System32\SLsvc.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(Dropbox, Inc.) C:\Program Files\Dropbox\Client\Dropbox.exe
(Microsoft Corporation) C:\Program Files\Windows Media Player\wmpnscfg.exe
() C:\ProgramData\Results Hub\ResultsHubDesktopSearch.exe
(Google Inc.) C:\Program Files\Google\Update\1.3.28.15\GoogleCrashHandler.exe
(CHENGDU YIWO Tech Development Co., Ltd) C:\Program Files\EaseUS\Todo Backup\bin\Agent.exe
() C:\Program Files\WajInternetEn\wajam.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE
() C:\Program Files\WajInternetEn\wajam.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE
() C:\Program Files\EaseUS\Todo Backup\bin\TodoBackupService.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\NisSrv.exe
(Microsoft Corporation) C:\Windows\System32\vds.exe
(BitTorrent Inc.) C:\Users\Jean-Claude\AppData\Roaming\uTorrent\uTorrent.exe
(BitTorrent Inc.) C:\Users\Jean-Claude\AppData\Roaming\uTorrent\updates\3.4.5_41202\utorrentie.exe
(BitTorrent Inc.) C:\Users\Jean-Claude\AppData\Roaming\uTorrent\updates\3.4.5_41202\utorrentie.exe
(CHENGDU YIWO Tech Development Co., Ltd) C:\Program Files\EaseUS\Todo Backup\bin\TrayNotify.exe
() C:\ProgramData\3929cb63-cbbd-4b9c-8b92-a50fbd04e656\plugincontainer.exe
() C:\ProgramData\3929cb63-cbbd-4b9c-8b92-a50fbd04e656\plugins\2\Plugin.exe
() C:\ProgramData\3929cb63-cbbd-4b9c-8b92-a50fbd04e656\plugins\3\Plugin.exe
() C:\ProgramData\3929cb63-cbbd-4b9c-8b92-a50fbd04e656\plugins\8\Plugin.exe
() C:\ProgramData\3929cb63-cbbd-4b9c-8b92-a50fbd04e656\plugins\6\Plugin.exe
() C:\ProgramData\3929cb63-cbbd-4b9c-8b92-a50fbd04e656\plugins\10\Plugin.exe
() C:\Program Files\Common Files\3929cb63-cbbd-4b9c-8b92-a50fbd04e656\updater.exe
() C:\ProgramData\3929cb63-cbbd-4b9c-8b92-a50fbd04e656\plugins\5\Plugin.exe
() C:\ProgramData\3929cb63-cbbd-4b9c-8b92-a50fbd04e656\plugins\3\Plugin.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
() C:\ProgramData\3929cb63-cbbd-4b9c-8b92-a50fbd04e656\plugins\7\Plugin.exe
() C:\ProgramData\3929cb63-cbbd-4b9c-8b92-a50fbd04e656\plugins\7\Plugin.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\conime.exe
==================== Registre (Avec liste blanche) ===========================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [Windows Defender] => C:\Program Files\Windows Defender\MSASCui.exe [1008184 2008-01-21] (Microsoft Corporation)
HKLM\...\Run: [MSC] => C:\Program Files\Microsoft Security Client\msseces.exe [981688 2015-04-30] (Microsoft Corporation)
HKLM\...\Run: [] => [X]
HKLM\...\Run: [Dropbox] => C:\Program Files\Dropbox\Client\Dropbox.exe [36710768 2015-10-02] (Dropbox, Inc.)
HKU\S-1-5-21-2962254413-3669692779-3890164854-1000\...\Run: [GUDelayStartup] => C:\Program Files\Glary Utilities 5\StartupManager.exe [37152 2015-08-17] (Glarysoft Ltd)
HKU\S-1-5-21-2962254413-3669692779-3890164854-1000\...\Run: [uTorrent] => C:\Users\Jean-Claude\AppData\Roaming\uTorrent\uTorrent.exe [1822048 2015-10-08] (BitTorrent Inc.)
HKU\S-1-5-21-2962254413-3669692779-3890164854-1000\...\Run: [WMPNSCFG] => C:\Program Files\Windows Media Player\WMPNSCFG.exe [202240 2008-01-21] (Microsoft Corporation)
HKU\S-1-5-21-2962254413-3669692779-3890164854-1000\...\MountPoints2: {1db07710-f553-11e4-8881-001bb9d24e87} - M:\.\Driver\DriverInstaller.exe -eject
ShellIconOverlayIdentifiers: [ DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.27.dll [2015-10-02] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.27.dll [2015-10-02] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt3] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.27.dll [2015-10-02] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt4] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.27.dll [2015-10-02] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt5] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.27.dll [2015-10-02] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt6] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.27.dll [2015-10-02] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt7] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.27.dll [2015-10-02] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt8] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.27.dll [2015-10-02] (Dropbox, Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\ResultsHubDesktopSearch.lnk [2015-08-17]
ShortcutTarget: ResultsHubDesktopSearch.lnk -> C:\ProgramData\Results Hub\ResultsHubDesktopSearch.exe ()
BootExecute: autocheck autochk *
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.0.254
Tcpip\..\Interfaces\{02B6791E-834C-4E73-AB1C-28BFE1772C37}: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{A8798B50-A18D-4DE7-9D7E-98EE3F4AA44F}: [DhcpNameServer] 192.168.0.254
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://searchinterneat-a.akamaihd.net/h?eq=U0EeCFZVBB8SRggXdFteWQ9EERhBcA8PTA0VRQAOeQ8LABRJElBCdFtcUA1GQFcFIk0FA1ADB0VXfVBdFElXTwhxJUpNDU0CaUBB
HKU\S-1-5-21-2962254413-3669692779-3890164854-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://searchinterneat-a.akamaihd.net/h?eq=U0EeCFZVBB8SRggXdFteWQ9EERhBcA8PTA0VRQAOeQ8LABRJElBCdFtcUA1GQFcFIk0FA1ADB0VXfVBdFElXTwhxJUpNDU0CaUBB
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://searchinterneat-a.akamaihd.net/s?eq=U0EeE1xZE1oZB1ZEfQ0MA19JFwATbVsIVw5cFVFHdRQBVwoQDA0QJVgMA11AFQJCIh9aFQQTSEcFME0FCFwEURNNfWtdEkwdVUZrNVs=&q={searchTerms}
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://searchinterneat-a.akamaihd.net/s?eq=U0EeE1xZE1oZB1ZEfQ0MA19JFwATbVsIVw5cFVFHdRQBVwoQDA0QJVgMA11AFQJCIh9aFQQTSEcFME0FCFwEURNNfWtdEkwdVUZrNVs=&q={searchTerms}
SearchScopes: HKU\S-1-5-21-2962254413-3669692779-3890164854-1000 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://searchinterneat-a.akamaihd.net/s?eq=U0EeE1xZE1oZB1ZEfQ0MA19JFwATbVsIVw5cFVFHdRQBVwoQDA0QJVgMA11AFQJCIh9aFQQTSEcFME0FCFwEURNNfWtdEkwdVUZrNVs=&q={searchTerms}
SearchScopes: HKU\S-1-5-21-2962254413-3669692779-3890164854-1000 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://searchinterneat-a.akamaihd.net/s?eq=U0EeE1xZE1oZB1ZEfQ0MA19JFwATbVsIVw5cFVFHdRQBVwoQDA0QJVgMA11AFQJCIh9aFQQTSEcFME0FCFwEURNNfWtdEkwdVUZrNVs=&q={searchTerms}
SearchScopes: HKU\S-1-5-21-2962254413-3669692779-3890164854-1000 -> {BEF735E3-BB43-4D59-A5DC-633BB79E53A2} URL = hxxp://search.yahoo.com/yhs/search?hspart=ddc&hsimp=yhs-ddc_bd&type=bl-bir-dd__alt__ddc_dss_bd_com&p={searchTerms}
BHO: HP Print Enhancer -> {0347C33E-8762-4905-BF09-768834316C61} -> C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll [2009-10-22] (Hewlett-Packard Co.)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18] (Microsoft Corporation)
BHO: DVDVideoSoft IE Extension -> {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} -> C:\Program Files\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns.dll [2015-08-05] (DVDVideoSoft Ltd.)
BHO: HP Smart BHO Class -> {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} -> C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll [2009-10-22] (Hewlett-Packard Co.)
FireFox:
========
FF ProfilePath: C:\Users\Jean-Claude\AppData\Roaming\Mozilla\Firefox\Profiles\m81zhdal.default-1442764219888
FF NewTab: hxxp://searchinterneat-a.akamaihd.net/t?eq=U0EeFFhaR1oWHAEXIl8AVwxBDFcTdg4VVV0VFBgadgpZTAFCRFQXIl0JVQ4QQxNBNARaB0tXUUEeGGlxR1dMc1BQNVVMEnEEQw==
FF DefaultSearchEngine: Default
FF SelectedSearchEngine: Default
FF Homepage: hxxp://searchinterneat-a.akamaihd.net/h?eq=U0EeCFZVBB8SRggXdFteWQ9EERhBcA8PTA0VRQAOeQ8LABRJElBCdFtcUA1GQFcFIk0FA18DB0VXfWFoKB8fHGdGM0xUFUo5VFc=
FF Keyword.URL: hxxp://searchinterneat-a.akamaihd.net/s?eq=U0EeE1xZE1oZB1ZEfQ0MA19JFwATbVsIVw5cFVFHdRQBVwoQDA0QJVgMA11AFQJCIh9aFQQTR0cFME0FB18EURNNfWtdEkwdVUZrNVs=&q={searchTerms}
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_19_0_0_185.dll [2015-10-06] ()
FF Plugin: @Google.com/GoogleEarthPlugin -> C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll [2015-05-21] (Google)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 -> C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll [2008-07-30] (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-16] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-16] (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.1.5 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2014-12-03] (Adobe Systems Inc.)
FF SearchPlugin: C:\Users\Jean-Claude\AppData\Roaming\Mozilla\Firefox\Profiles\m81zhdal.default-1442764219888\searchplugins\default.xml [2015-09-20]
FF Extension: Results Hub - C:\Users\Jean-Claude\AppData\Roaming\Mozilla\Firefox\Profiles\m81zhdal.default-1442764219888\Extensions\{448906fa-d7b2-460b-8f25-8c00ca2283a0}.xpi [2015-09-20]
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: Microsoft .NET Framework Assistant - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2015-01-17]
FF HKLM\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF Extension: HP Smart Web Printing - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2015-01-31]
FF HKU\S-1-5-21-2962254413-3669692779-3890164854-1000\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
Chrome:
=======
CHR HomePage: Default -> hxxp://www.trovi.com/?gd=&ctid=CT3318522&octid=EB_ORIGINAL_CTID&ISID=MFAF9E027-29FC-4533-8960-B2FB0A4A3B97&SearchSource=55&CUI=&UM=6&UP=SPB16520F0-467A-4620-BC8C-892880957298&SSPV=
CHR RestoreOnStartup: Default -> "hxxp://searchinterneat-a.akamaihd.net/h?eq=U0EeCFZVBB8SRggXdFteWQ9EERhBcA8PTA0VRQAOeQ8LABRJElBCdFtcUA1GQFcFIk0FA1oDB0VXfV5bFElXTwhxJUpNDU0CaUBB"
CHR StartupUrls: Default -> "hxxp://searchinterneat-a.akamaihd.net/h?eq=U0EeCFZVBB8SRggXdFteWQ9EERhBcA8PTA0VRQAOeQ8LABRJElBCdFtcUA1GQFcFIk0FA1oDB0VXfV5bFElXTwhxJUpNDU0CaUBB"
CHR DefaultSearchURL: Default -> hxxp://searchinterneat-a.akamaihd.net/s?eq=U0EeE1xZE1oZB1ZEfQ0MA19JFwATbVsIVw5cFVFHdRQBVwoQDA0QJVgMA11AFQJCIh9aFQQTQkcFME0FBloEURNNfWtdEkwdVUZrNVs=&q={searchTerms}
CHR DefaultSearchKeyword: Default -> searchinterneat-a.akamaihd.net
CHR DefaultNewTabURL: Default -> hxxp://searchinterneat-a.akamaihd.net/t?eq=U0EeFFhaR1oWHAEXIl8AVwxBDFcTdg4VVV0VFBgadgpZTAFCRFQXIl0JVQ4QQxNBNARaAktXUUEeJ1pNER8fHGdGM0xUFUo5VFc=
CHR Profile: C:\Users\Jean-Claude\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Drive) - C:\Users\Jean-Claude\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-01-20]
CHR Extension: (WOT: Web of Trust, Website Reputation Ratings) - C:\Users\Jean-Claude\AppData\Local\Google\Chrome\User Data\Default\Extensions\bhmmomiinigofkjcapegjjndpbikblnp [2015-08-17]
CHR Extension: (YouTube) - C:\Users\Jean-Claude\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-01-20]
CHR Extension: (Recherche Google) - C:\Users\Jean-Claude\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-01-20]
CHR Extension: (faces.im: a facebook messenger for chrome) - C:\Users\Jean-Claude\AppData\Local\Google\Chrome\User Data\Default\Extensions\ddfbfhabcagnmjekibikpdacoalbmgbl [2015-01-25]
CHR Extension: (Google Docs hors connexion) - C:\Users\Jean-Claude\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-09-03]
CHR Extension: (Hola - VPN gratuitx) - C:\Users\Jean-Claude\AppData\Local\Google\Chrome\User Data\Default\Extensions\gkojfkhlekighikafcpjkiklfbnlmeio [2015-02-08]
CHR Extension: (Test de vitesse) - C:\Users\Jean-Claude\AppData\Local\Google\Chrome\User Data\Default\Extensions\hlhbmnfdcklajeaeikfinieljfegamko [2015-02-08]
CHR Extension: (Chrome Hotword Shared Module) - C:\Users\Jean-Claude\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-03-13]
CHR Extension: (Ghostery) - C:\Users\Jean-Claude\AppData\Local\Google\Chrome\User Data\Default\Extensions\mlomiejdfkolichcflejclcbmpeaniij [2015-02-19]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Jean-Claude\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-01-20]
CHR Extension: (AdBlock Pro) - C:\Users\Jean-Claude\AppData\Local\Google\Chrome\User Data\Default\Extensions\ocifcklkibdehekfnmflempfgjhbedch [2015-02-08]
CHR Extension: (Google) - C:\Users\Jean-Claude\AppData\Local\Google\Chrome\User Data\Default\Extensions\panhfjbapmcigaeaebakhnfjocpelhmm [2015-09-16]
CHR Extension: (Gmail) - C:\Users\Jean-Claude\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-01-20]
CHR Extension: (Download Helper) - C:\Users\Jean-Claude\AppData\Local\Google\Chrome\User Data\Default\Extensions\plakpcmpdoljmbpbndlkanblnchogifl [2015-02-08]
CHR Extension: (Abstract-Blue) - C:\Users\Jean-Claude\AppData\Local\Google\Chrome\User Data\Default\Extensions\plnacehkknmafkjgkikclamogikoiaaa [2015-09-18]
==================== Services (Avec liste blanche) ========================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S2 dbupdate; C:\Program Files\Dropbox\Update\DropboxUpdate.exe [136048 2015-08-24] (Dropbox, Inc.)
S3 dbupdatem; C:\Program Files\Dropbox\Update\DropboxUpdate.exe [136048 2015-08-24] (Dropbox, Inc.)
R2 EaseUS Agent; C:\Program Files\EaseUS\Todo Backup\bin\Agent.exe [37416 2014-12-15] (CHENGDU YIWO Tech Development Co., Ltd)
R2 MsMpSvc; C:\Program Files\Microsoft Security Client\MsMpEng.exe [22216 2015-04-30] (Microsoft Corporation)
R2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [44032 2010-01-18] (Hewlett-Packard) [Fichier non signé]
R3 NisSrv; C:\Program Files\Microsoft Security Client\NisSrv.exe [284504 2015-04-30] (Microsoft Corporation)
R2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [53760 2010-01-18] (Hewlett-Packard) [Fichier non signé]
R2 Service Mgr ResultsHub; C:\ProgramData\3929cb63-cbbd-4b9c-8b92-a50fbd04e656\plugincontainer.exe [1048800 2015-10-08] ()
R2 Update Mgr ResultsHub; C:\Program Files\Common Files\3929cb63-cbbd-4b9c-8b92-a50fbd04e656\updater.exe [612064 2015-10-08] ()
R2 WajInternetEn Monitor; C:\Program Files\WajInternetEn\wajam.exe [1729024 2015-08-16] () [Fichier non signé]
S2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [272952 2008-01-21] (Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ==========================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 cdrombus; C:\Windows\System32\Drivers\cdrombus.sys [19968 2012-08-22] (Windows (R) Codename Longhorn DDK provider)
R0 EUBAKUP; C:\Windows\System32\drivers\eubakup.sys [51752 2014-12-15] (CHENGDU YIWO Tech Development Co., Ltd)
R0 EUBKMON; C:\Windows\System32\drivers\EUBKMON.sys [41512 2014-12-15] ()
R1 EUDSKACS; C:\Windows\system32\drivers\eudskacs.sys [15912 2014-12-15] (CHENGDU YIWO Tech Development Co., Ltd)
R1 EUFDDISK; C:\Windows\system32\drivers\EuFdDisk.sys [189992 2014-12-15] (CHENGDU YIWO Tech Development Co., Ltd)
R1 GUBootStartup; C:\Windows\System32\drivers\GUBootStartup.sys [17472 2015-07-21] (Glarysoft Ltd)
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [245096 2015-03-04] (Microsoft Corporation)
R3 ovt530; C:\Windows\System32\Drivers\ov530vid.sys [161792 2005-03-15] (OmniVision Technologies, Inc.) [Fichier non signé]
S3 Afc; system32\drivers\Afc.sys [X]
S3 IpInIp; system32\DRIVERS\ipinip.sys [X]
S3 NwlnkFlt; system32\DRIVERS\nwlnkflt.sys [X]
S3 NwlnkFwd; system32\DRIVERS\nwlnkfwd.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois - Créés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2015-10-08 15:02 - 2015-10-08 15:03 - 00019154 _____ C:\Users\Jean-Claude\Downloads\FRST.txt
2015-10-08 14:59 - 2015-10-08 15:02 - 00000000 ____D C:\FRST
2015-10-08 14:58 - 2015-10-08 14:58 - 01697792 _____ (Farbar) C:\Users\Jean-Claude\Downloads\FRST.exe
2015-10-08 11:07 - 2015-10-08 11:07 - 00000000 ____D C:\Users\Jean-Claude\AppData\LocalLow\uTorrent
2015-10-07 13:47 - 2015-10-07 13:48 - 00001580 _____ C:\Windows\setupact.log
2015-10-07 13:47 - 2015-10-07 13:47 - 00000000 _____ C:\Windows\setuperr.log
2015-10-07 11:47 - 2015-10-08 10:52 - 00000000 ____D C:\Program Files\Mozilla Firefox
2015-10-07 10:10 - 2015-10-08 10:52 - 00001104 _____ C:\Windows\PFRO.log
2015-10-06 22:08 - 2015-10-08 12:20 - 00000000 ____D C:\Users\Jean-Claude\Desktop\almunecar
2015-10-06 16:59 - 2015-10-06 16:59 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2015-09-16 17:39 - 2015-09-16 17:39 - 00000000 ____D C:\Users\Jean-Claude\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Applications Chrome
2015-09-16 14:15 - 2015-09-20 17:50 - 00000000 ____D C:\Users\Jean-Claude\Desktop\Anciennes données de Firefox
2015-09-10 10:00 - 2015-08-13 16:15 - 00304640 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
2015-09-10 10:00 - 2015-08-13 16:15 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2015-09-10 09:59 - 2015-09-02 23:26 - 01402368 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2015-09-10 09:59 - 2015-09-02 23:26 - 01253376 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2015-09-10 09:58 - 2015-07-10 16:21 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2015-09-10 09:57 - 2015-09-02 23:26 - 00034304 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2015-09-10 09:57 - 2015-09-02 21:55 - 02067456 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2015-09-10 09:57 - 2015-09-02 21:54 - 00297472 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2015-09-10 09:57 - 2015-08-05 17:59 - 00602112 _____ (Microsoft Corporation) C:\Windows\system32\schedsvc.dll
2015-09-09 15:41 - 2015-09-10 11:56 - 00000000 ____D C:\Users\Jean-Claude\Desktop\archives mail
2015-09-09 15:02 - 2015-08-17 19:18 - 01814016 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-09-09 15:02 - 2015-08-17 19:17 - 12388352 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-09-09 15:02 - 2015-08-17 19:14 - 00367616 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2015-09-09 15:02 - 2015-08-17 19:13 - 09751040 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-09-09 15:02 - 2015-08-17 19:12 - 01139712 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-09-09 15:02 - 2015-08-17 19:12 - 01129472 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-09-09 15:02 - 2015-08-17 19:11 - 01427968 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2015-09-09 15:02 - 2015-08-17 19:11 - 00422400 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-09-09 15:02 - 2015-08-17 19:10 - 01804288 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-09-09 15:02 - 2015-08-17 19:10 - 00718848 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2015-09-09 15:02 - 2015-08-17 19:10 - 00607744 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2015-09-09 15:02 - 2015-08-17 19:10 - 00353792 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2015-09-09 15:02 - 2015-08-17 19:10 - 00231936 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2015-09-09 15:02 - 2015-08-17 19:10 - 00223232 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2015-09-09 15:02 - 2015-08-17 19:10 - 00176640 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2015-09-09 15:02 - 2015-08-17 19:10 - 00142848 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2015-09-09 15:02 - 2015-08-17 19:10 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2015-09-09 15:02 - 2015-08-17 19:10 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2015-09-09 15:02 - 2015-08-17 19:10 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2015-09-09 15:02 - 2015-08-17 19:10 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2015-09-09 15:02 - 2015-08-17 19:10 - 00010752 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2015-09-09 15:02 - 2015-08-17 19:09 - 02382848 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2015-09-08 16:17 - 2015-10-08 14:15 - 00000032 _____ C:\Windows\system32\Eu(12-20141222).OD
2015-09-08 15:22 - 2015-09-08 15:22 - 02662704 _____ (Google) C:\Users\Jean-Claude\Downloads\gpautobackup_setup.exe
2015-09-08 15:10 - 2015-09-08 15:10 - 00001902 _____ C:\Users\Public\Desktop\EaseUS Todo Backup Home 8.0 Trial.lnk
2015-09-08 15:10 - 2015-09-08 15:10 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EaseUS Todo Backup Home 8.0
2015-09-08 15:10 - 2014-12-15 00:58 - 00189992 _____ (CHENGDU YIWO Tech Development Co., Ltd) C:\Windows\system32\Drivers\EuFdDisk.sys
2015-09-08 15:10 - 2014-12-15 00:58 - 00051752 _____ (CHENGDU YIWO Tech Development Co., Ltd) C:\Windows\system32\Drivers\eubakup.sys
2015-09-08 15:10 - 2014-12-15 00:58 - 00041512 _____ C:\Windows\system32\Drivers\EUBKMON.sys
2015-09-08 15:10 - 2014-12-15 00:58 - 00015912 _____ (CHENGDU YIWO Tech Development Co., Ltd) C:\Windows\system32\Drivers\eudskacs.sys
2015-09-08 15:06 - 2015-09-08 15:06 - 00000000 ____D C:\Program Files\EaseUS
2015-09-08 15:06 - 2014-12-15 01:03 - 00019496 _____ (CHENGDU YIWO Tech Development Co., Ltd) C:\Windows\system32\fbnative.exe
2015-09-08 15:02 - 2015-09-08 15:04 - 97090848 _____ (CHENGDU YIWO Tech Development Co., Ltd ) C:\Users\Jean-Claude\Downloads\tbh_trial.exe
==================== Un mois - Modifiés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2015-10-08 15:01 - 2015-01-28 14:39 - 00000000 ____D C:\Users\Jean-Claude\AppData\Roaming\uTorrent
2015-10-08 14:54 - 2015-01-22 14:43 - 00001002 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-10-08 14:52 - 2006-11-02 14:47 - 00004112 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
2015-10-08 14:52 - 2006-11-02 14:47 - 00004112 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
2015-10-08 14:50 - 2015-01-20 12:29 - 00001056 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-10-08 14:24 - 2015-08-24 16:19 - 00001184 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job
2015-10-08 13:37 - 2008-01-21 03:35 - 01787089 _____ C:\Windows\WindowsUpdate.log
2015-10-08 13:00 - 2015-08-17 16:05 - 00000000 ____D C:\Program Files\Common Files\3929cb63-cbbd-4b9c-8b92-a50fbd04e656
2015-10-08 12:59 - 2015-08-17 16:05 - 00000000 ____D C:\ProgramData\3929cb63-cbbd-4b9c-8b92-a50fbd04e656
2015-10-08 11:03 - 2015-01-20 12:30 - 00001999 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2015-10-08 10:57 - 2008-01-21 10:41 - 01613540 _____ C:\Windows\system32\PerfStringBackup.INI
2015-10-08 10:53 - 2015-02-15 11:44 - 00000000 ___RD C:\Users\Jean-Claude\Dropbox
2015-10-08 10:53 - 2015-02-14 13:39 - 00000000 ____D C:\Users\Jean-Claude\AppData\Roaming\Dropbox
2015-10-08 10:52 - 2015-08-24 16:19 - 00001180 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job
2015-10-08 10:52 - 2015-01-20 19:12 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service
2015-10-08 10:52 - 2015-01-20 12:29 - 00001052 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-10-08 10:52 - 2006-11-02 15:01 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2015-10-07 22:56 - 2006-11-02 15:01 - 00032590 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2015-10-07 14:24 - 2015-02-08 01:10 - 00000000 ____D C:\Users\Jean-Claude\AppData\Roaming\vlc
2015-10-06 16:59 - 2015-02-14 13:45 - 00000000 ____D C:\Program Files\Dropbox
2015-10-06 16:54 - 2015-01-22 14:43 - 00780488 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2015-10-06 16:54 - 2015-01-22 14:43 - 00142536 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2015-09-11 01:43 - 2015-01-20 12:29 - 00000000 ____D C:\Users\Jean-Claude\AppData\Local\Google
2015-09-10 10:34 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\rescache
2015-09-10 10:18 - 2006-11-02 14:47 - 00298328 _____ C:\Windows\system32\FNTCACHE.DAT
2015-09-10 10:15 - 2006-11-02 14:37 - 00000000 ____D C:\Program Files\Windows Journal
2015-09-10 10:15 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\fr-FR
2015-09-10 10:02 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\Microsoft.NET
2015-09-10 09:55 - 2015-01-17 21:43 - 00000000 ____D C:\Windows\system32\MRT
==================== Fichiers à la racine de certains dossiers =======
2015-01-17 19:18 - 2015-05-01 11:58 - 0000680 _____ () C:\Users\Jean-Claude\AppData\Local\d3d9caps.dat
2015-01-20 11:48 - 2015-09-03 11:54 - 0025600 _____ () C:\Users\Jean-Claude\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2015-05-01 11:59 - 2015-05-01 11:59 - 0000000 _____ () C:\Users\Jean-Claude\AppData\Local\{9D0BE9B0-3CD9-4EB8-9602-2C2B2E1EE17B}
2015-01-28 23:47 - 2015-01-31 17:17 - 0018817 _____ () C:\ProgramData\hpzinstall.log
Certains fichiers dans TEMP:
====================
C:\Users\Jean-Claude\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpjaqpyc.dll
==================== Bamital & volsnap =================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
C:\Windows\explorer.exe => Le fichier est signé numériquement
C:\Windows\system32\winlogon.exe => Le fichier est signé numériquement
C:\Windows\system32\wininit.exe => Le fichier est signé numériquement
C:\Windows\system32\svchost.exe => Le fichier est signé numériquement
C:\Windows\system32\services.exe => Le fichier est signé numériquement
C:\Windows\system32\User32.dll => Le fichier est signé numériquement
C:\Windows\system32\userinit.exe => Le fichier est signé numériquement
C:\Windows\system32\rpcss.dll => Le fichier est signé numériquement
C:\Windows\system32\dnsapi.dll => Le fichier est signé numériquement
C:\Windows\system32\Drivers\volsnap.sys => Le fichier est signé numériquement
LastRegBack: 2015-10-08 10:59
==================== Fin de FRST.txt ============================
Exécuté par Jean-Claude (administrateur) sur PC-DE-JEAN-CLAU (08-10-2015 15:02:28)
Exécuté depuis C:\Users\Jean-Claude\Downloads
Profils chargés: Jean-Claude (Profils disponibles: Jean-Claude)
Platform: Microsoft® Windows Vista™ Édition Familiale Premium Service Pack 2 (X86) Langue: Français (France)
Internet Explorer Version 9 (Navigateur par défaut: FF)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(Microsoft Corporation) C:\Windows\System32\SLsvc.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(Dropbox, Inc.) C:\Program Files\Dropbox\Client\Dropbox.exe
(Microsoft Corporation) C:\Program Files\Windows Media Player\wmpnscfg.exe
() C:\ProgramData\Results Hub\ResultsHubDesktopSearch.exe
(Google Inc.) C:\Program Files\Google\Update\1.3.28.15\GoogleCrashHandler.exe
(CHENGDU YIWO Tech Development Co., Ltd) C:\Program Files\EaseUS\Todo Backup\bin\Agent.exe
() C:\Program Files\WajInternetEn\wajam.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE
() C:\Program Files\WajInternetEn\wajam.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE
() C:\Program Files\EaseUS\Todo Backup\bin\TodoBackupService.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\NisSrv.exe
(Microsoft Corporation) C:\Windows\System32\vds.exe
(BitTorrent Inc.) C:\Users\Jean-Claude\AppData\Roaming\uTorrent\uTorrent.exe
(BitTorrent Inc.) C:\Users\Jean-Claude\AppData\Roaming\uTorrent\updates\3.4.5_41202\utorrentie.exe
(BitTorrent Inc.) C:\Users\Jean-Claude\AppData\Roaming\uTorrent\updates\3.4.5_41202\utorrentie.exe
(CHENGDU YIWO Tech Development Co., Ltd) C:\Program Files\EaseUS\Todo Backup\bin\TrayNotify.exe
() C:\ProgramData\3929cb63-cbbd-4b9c-8b92-a50fbd04e656\plugincontainer.exe
() C:\ProgramData\3929cb63-cbbd-4b9c-8b92-a50fbd04e656\plugins\2\Plugin.exe
() C:\ProgramData\3929cb63-cbbd-4b9c-8b92-a50fbd04e656\plugins\3\Plugin.exe
() C:\ProgramData\3929cb63-cbbd-4b9c-8b92-a50fbd04e656\plugins\8\Plugin.exe
() C:\ProgramData\3929cb63-cbbd-4b9c-8b92-a50fbd04e656\plugins\6\Plugin.exe
() C:\ProgramData\3929cb63-cbbd-4b9c-8b92-a50fbd04e656\plugins\10\Plugin.exe
() C:\Program Files\Common Files\3929cb63-cbbd-4b9c-8b92-a50fbd04e656\updater.exe
() C:\ProgramData\3929cb63-cbbd-4b9c-8b92-a50fbd04e656\plugins\5\Plugin.exe
() C:\ProgramData\3929cb63-cbbd-4b9c-8b92-a50fbd04e656\plugins\3\Plugin.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
() C:\ProgramData\3929cb63-cbbd-4b9c-8b92-a50fbd04e656\plugins\7\Plugin.exe
() C:\ProgramData\3929cb63-cbbd-4b9c-8b92-a50fbd04e656\plugins\7\Plugin.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\conime.exe
==================== Registre (Avec liste blanche) ===========================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [Windows Defender] => C:\Program Files\Windows Defender\MSASCui.exe [1008184 2008-01-21] (Microsoft Corporation)
HKLM\...\Run: [MSC] => C:\Program Files\Microsoft Security Client\msseces.exe [981688 2015-04-30] (Microsoft Corporation)
HKLM\...\Run: [] => [X]
HKLM\...\Run: [Dropbox] => C:\Program Files\Dropbox\Client\Dropbox.exe [36710768 2015-10-02] (Dropbox, Inc.)
HKU\S-1-5-21-2962254413-3669692779-3890164854-1000\...\Run: [GUDelayStartup] => C:\Program Files\Glary Utilities 5\StartupManager.exe [37152 2015-08-17] (Glarysoft Ltd)
HKU\S-1-5-21-2962254413-3669692779-3890164854-1000\...\Run: [uTorrent] => C:\Users\Jean-Claude\AppData\Roaming\uTorrent\uTorrent.exe [1822048 2015-10-08] (BitTorrent Inc.)
HKU\S-1-5-21-2962254413-3669692779-3890164854-1000\...\Run: [WMPNSCFG] => C:\Program Files\Windows Media Player\WMPNSCFG.exe [202240 2008-01-21] (Microsoft Corporation)
HKU\S-1-5-21-2962254413-3669692779-3890164854-1000\...\MountPoints2: {1db07710-f553-11e4-8881-001bb9d24e87} - M:\.\Driver\DriverInstaller.exe -eject
ShellIconOverlayIdentifiers: [ DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.27.dll [2015-10-02] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.27.dll [2015-10-02] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt3] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.27.dll [2015-10-02] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt4] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.27.dll [2015-10-02] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt5] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.27.dll [2015-10-02] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt6] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.27.dll [2015-10-02] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt7] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.27.dll [2015-10-02] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt8] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.27.dll [2015-10-02] (Dropbox, Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\ResultsHubDesktopSearch.lnk [2015-08-17]
ShortcutTarget: ResultsHubDesktopSearch.lnk -> C:\ProgramData\Results Hub\ResultsHubDesktopSearch.exe ()
BootExecute: autocheck autochk *
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.0.254
Tcpip\..\Interfaces\{02B6791E-834C-4E73-AB1C-28BFE1772C37}: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{A8798B50-A18D-4DE7-9D7E-98EE3F4AA44F}: [DhcpNameServer] 192.168.0.254
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://searchinterneat-a.akamaihd.net/h?eq=U0EeCFZVBB8SRggXdFteWQ9EERhBcA8PTA0VRQAOeQ8LABRJElBCdFtcUA1GQFcFIk0FA1ADB0VXfVBdFElXTwhxJUpNDU0CaUBB
HKU\S-1-5-21-2962254413-3669692779-3890164854-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://searchinterneat-a.akamaihd.net/h?eq=U0EeCFZVBB8SRggXdFteWQ9EERhBcA8PTA0VRQAOeQ8LABRJElBCdFtcUA1GQFcFIk0FA1ADB0VXfVBdFElXTwhxJUpNDU0CaUBB
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://searchinterneat-a.akamaihd.net/s?eq=U0EeE1xZE1oZB1ZEfQ0MA19JFwATbVsIVw5cFVFHdRQBVwoQDA0QJVgMA11AFQJCIh9aFQQTSEcFME0FCFwEURNNfWtdEkwdVUZrNVs=&q={searchTerms}
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://searchinterneat-a.akamaihd.net/s?eq=U0EeE1xZE1oZB1ZEfQ0MA19JFwATbVsIVw5cFVFHdRQBVwoQDA0QJVgMA11AFQJCIh9aFQQTSEcFME0FCFwEURNNfWtdEkwdVUZrNVs=&q={searchTerms}
SearchScopes: HKU\S-1-5-21-2962254413-3669692779-3890164854-1000 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://searchinterneat-a.akamaihd.net/s?eq=U0EeE1xZE1oZB1ZEfQ0MA19JFwATbVsIVw5cFVFHdRQBVwoQDA0QJVgMA11AFQJCIh9aFQQTSEcFME0FCFwEURNNfWtdEkwdVUZrNVs=&q={searchTerms}
SearchScopes: HKU\S-1-5-21-2962254413-3669692779-3890164854-1000 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://searchinterneat-a.akamaihd.net/s?eq=U0EeE1xZE1oZB1ZEfQ0MA19JFwATbVsIVw5cFVFHdRQBVwoQDA0QJVgMA11AFQJCIh9aFQQTSEcFME0FCFwEURNNfWtdEkwdVUZrNVs=&q={searchTerms}
SearchScopes: HKU\S-1-5-21-2962254413-3669692779-3890164854-1000 -> {BEF735E3-BB43-4D59-A5DC-633BB79E53A2} URL = hxxp://search.yahoo.com/yhs/search?hspart=ddc&hsimp=yhs-ddc_bd&type=bl-bir-dd__alt__ddc_dss_bd_com&p={searchTerms}
BHO: HP Print Enhancer -> {0347C33E-8762-4905-BF09-768834316C61} -> C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll [2009-10-22] (Hewlett-Packard Co.)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18] (Microsoft Corporation)
BHO: DVDVideoSoft IE Extension -> {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} -> C:\Program Files\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns.dll [2015-08-05] (DVDVideoSoft Ltd.)
BHO: HP Smart BHO Class -> {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} -> C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll [2009-10-22] (Hewlett-Packard Co.)
FireFox:
========
FF ProfilePath: C:\Users\Jean-Claude\AppData\Roaming\Mozilla\Firefox\Profiles\m81zhdal.default-1442764219888
FF NewTab: hxxp://searchinterneat-a.akamaihd.net/t?eq=U0EeFFhaR1oWHAEXIl8AVwxBDFcTdg4VVV0VFBgadgpZTAFCRFQXIl0JVQ4QQxNBNARaB0tXUUEeGGlxR1dMc1BQNVVMEnEEQw==
FF DefaultSearchEngine: Default
FF SelectedSearchEngine: Default
FF Homepage: hxxp://searchinterneat-a.akamaihd.net/h?eq=U0EeCFZVBB8SRggXdFteWQ9EERhBcA8PTA0VRQAOeQ8LABRJElBCdFtcUA1GQFcFIk0FA18DB0VXfWFoKB8fHGdGM0xUFUo5VFc=
FF Keyword.URL: hxxp://searchinterneat-a.akamaihd.net/s?eq=U0EeE1xZE1oZB1ZEfQ0MA19JFwATbVsIVw5cFVFHdRQBVwoQDA0QJVgMA11AFQJCIh9aFQQTR0cFME0FB18EURNNfWtdEkwdVUZrNVs=&q={searchTerms}
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_19_0_0_185.dll [2015-10-06] ()
FF Plugin: @Google.com/GoogleEarthPlugin -> C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll [2015-05-21] (Google)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 -> C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll [2008-07-30] (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-16] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-16] (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.1.5 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2014-12-03] (Adobe Systems Inc.)
FF SearchPlugin: C:\Users\Jean-Claude\AppData\Roaming\Mozilla\Firefox\Profiles\m81zhdal.default-1442764219888\searchplugins\default.xml [2015-09-20]
FF Extension: Results Hub - C:\Users\Jean-Claude\AppData\Roaming\Mozilla\Firefox\Profiles\m81zhdal.default-1442764219888\Extensions\{448906fa-d7b2-460b-8f25-8c00ca2283a0}.xpi [2015-09-20]
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: Microsoft .NET Framework Assistant - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2015-01-17]
FF HKLM\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF Extension: HP Smart Web Printing - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2015-01-31]
FF HKU\S-1-5-21-2962254413-3669692779-3890164854-1000\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
Chrome:
=======
CHR HomePage: Default -> hxxp://www.trovi.com/?gd=&ctid=CT3318522&octid=EB_ORIGINAL_CTID&ISID=MFAF9E027-29FC-4533-8960-B2FB0A4A3B97&SearchSource=55&CUI=&UM=6&UP=SPB16520F0-467A-4620-BC8C-892880957298&SSPV=
CHR RestoreOnStartup: Default -> "hxxp://searchinterneat-a.akamaihd.net/h?eq=U0EeCFZVBB8SRggXdFteWQ9EERhBcA8PTA0VRQAOeQ8LABRJElBCdFtcUA1GQFcFIk0FA1oDB0VXfV5bFElXTwhxJUpNDU0CaUBB"
CHR StartupUrls: Default -> "hxxp://searchinterneat-a.akamaihd.net/h?eq=U0EeCFZVBB8SRggXdFteWQ9EERhBcA8PTA0VRQAOeQ8LABRJElBCdFtcUA1GQFcFIk0FA1oDB0VXfV5bFElXTwhxJUpNDU0CaUBB"
CHR DefaultSearchURL: Default -> hxxp://searchinterneat-a.akamaihd.net/s?eq=U0EeE1xZE1oZB1ZEfQ0MA19JFwATbVsIVw5cFVFHdRQBVwoQDA0QJVgMA11AFQJCIh9aFQQTQkcFME0FBloEURNNfWtdEkwdVUZrNVs=&q={searchTerms}
CHR DefaultSearchKeyword: Default -> searchinterneat-a.akamaihd.net
CHR DefaultNewTabURL: Default -> hxxp://searchinterneat-a.akamaihd.net/t?eq=U0EeFFhaR1oWHAEXIl8AVwxBDFcTdg4VVV0VFBgadgpZTAFCRFQXIl0JVQ4QQxNBNARaAktXUUEeJ1pNER8fHGdGM0xUFUo5VFc=
CHR Profile: C:\Users\Jean-Claude\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Drive) - C:\Users\Jean-Claude\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-01-20]
CHR Extension: (WOT: Web of Trust, Website Reputation Ratings) - C:\Users\Jean-Claude\AppData\Local\Google\Chrome\User Data\Default\Extensions\bhmmomiinigofkjcapegjjndpbikblnp [2015-08-17]
CHR Extension: (YouTube) - C:\Users\Jean-Claude\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-01-20]
CHR Extension: (Recherche Google) - C:\Users\Jean-Claude\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-01-20]
CHR Extension: (faces.im: a facebook messenger for chrome) - C:\Users\Jean-Claude\AppData\Local\Google\Chrome\User Data\Default\Extensions\ddfbfhabcagnmjekibikpdacoalbmgbl [2015-01-25]
CHR Extension: (Google Docs hors connexion) - C:\Users\Jean-Claude\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-09-03]
CHR Extension: (Hola - VPN gratuitx) - C:\Users\Jean-Claude\AppData\Local\Google\Chrome\User Data\Default\Extensions\gkojfkhlekighikafcpjkiklfbnlmeio [2015-02-08]
CHR Extension: (Test de vitesse) - C:\Users\Jean-Claude\AppData\Local\Google\Chrome\User Data\Default\Extensions\hlhbmnfdcklajeaeikfinieljfegamko [2015-02-08]
CHR Extension: (Chrome Hotword Shared Module) - C:\Users\Jean-Claude\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-03-13]
CHR Extension: (Ghostery) - C:\Users\Jean-Claude\AppData\Local\Google\Chrome\User Data\Default\Extensions\mlomiejdfkolichcflejclcbmpeaniij [2015-02-19]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Jean-Claude\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-01-20]
CHR Extension: (AdBlock Pro) - C:\Users\Jean-Claude\AppData\Local\Google\Chrome\User Data\Default\Extensions\ocifcklkibdehekfnmflempfgjhbedch [2015-02-08]
CHR Extension: (Google) - C:\Users\Jean-Claude\AppData\Local\Google\Chrome\User Data\Default\Extensions\panhfjbapmcigaeaebakhnfjocpelhmm [2015-09-16]
CHR Extension: (Gmail) - C:\Users\Jean-Claude\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-01-20]
CHR Extension: (Download Helper) - C:\Users\Jean-Claude\AppData\Local\Google\Chrome\User Data\Default\Extensions\plakpcmpdoljmbpbndlkanblnchogifl [2015-02-08]
CHR Extension: (Abstract-Blue) - C:\Users\Jean-Claude\AppData\Local\Google\Chrome\User Data\Default\Extensions\plnacehkknmafkjgkikclamogikoiaaa [2015-09-18]
==================== Services (Avec liste blanche) ========================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S2 dbupdate; C:\Program Files\Dropbox\Update\DropboxUpdate.exe [136048 2015-08-24] (Dropbox, Inc.)
S3 dbupdatem; C:\Program Files\Dropbox\Update\DropboxUpdate.exe [136048 2015-08-24] (Dropbox, Inc.)
R2 EaseUS Agent; C:\Program Files\EaseUS\Todo Backup\bin\Agent.exe [37416 2014-12-15] (CHENGDU YIWO Tech Development Co., Ltd)
R2 MsMpSvc; C:\Program Files\Microsoft Security Client\MsMpEng.exe [22216 2015-04-30] (Microsoft Corporation)
R2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [44032 2010-01-18] (Hewlett-Packard) [Fichier non signé]
R3 NisSrv; C:\Program Files\Microsoft Security Client\NisSrv.exe [284504 2015-04-30] (Microsoft Corporation)
R2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [53760 2010-01-18] (Hewlett-Packard) [Fichier non signé]
R2 Service Mgr ResultsHub; C:\ProgramData\3929cb63-cbbd-4b9c-8b92-a50fbd04e656\plugincontainer.exe [1048800 2015-10-08] ()
R2 Update Mgr ResultsHub; C:\Program Files\Common Files\3929cb63-cbbd-4b9c-8b92-a50fbd04e656\updater.exe [612064 2015-10-08] ()
R2 WajInternetEn Monitor; C:\Program Files\WajInternetEn\wajam.exe [1729024 2015-08-16] () [Fichier non signé]
S2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [272952 2008-01-21] (Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ==========================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 cdrombus; C:\Windows\System32\Drivers\cdrombus.sys [19968 2012-08-22] (Windows (R) Codename Longhorn DDK provider)
R0 EUBAKUP; C:\Windows\System32\drivers\eubakup.sys [51752 2014-12-15] (CHENGDU YIWO Tech Development Co., Ltd)
R0 EUBKMON; C:\Windows\System32\drivers\EUBKMON.sys [41512 2014-12-15] ()
R1 EUDSKACS; C:\Windows\system32\drivers\eudskacs.sys [15912 2014-12-15] (CHENGDU YIWO Tech Development Co., Ltd)
R1 EUFDDISK; C:\Windows\system32\drivers\EuFdDisk.sys [189992 2014-12-15] (CHENGDU YIWO Tech Development Co., Ltd)
R1 GUBootStartup; C:\Windows\System32\drivers\GUBootStartup.sys [17472 2015-07-21] (Glarysoft Ltd)
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [245096 2015-03-04] (Microsoft Corporation)
R3 ovt530; C:\Windows\System32\Drivers\ov530vid.sys [161792 2005-03-15] (OmniVision Technologies, Inc.) [Fichier non signé]
S3 Afc; system32\drivers\Afc.sys [X]
S3 IpInIp; system32\DRIVERS\ipinip.sys [X]
S3 NwlnkFlt; system32\DRIVERS\nwlnkflt.sys [X]
S3 NwlnkFwd; system32\DRIVERS\nwlnkfwd.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois - Créés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2015-10-08 15:02 - 2015-10-08 15:03 - 00019154 _____ C:\Users\Jean-Claude\Downloads\FRST.txt
2015-10-08 14:59 - 2015-10-08 15:02 - 00000000 ____D C:\FRST
2015-10-08 14:58 - 2015-10-08 14:58 - 01697792 _____ (Farbar) C:\Users\Jean-Claude\Downloads\FRST.exe
2015-10-08 11:07 - 2015-10-08 11:07 - 00000000 ____D C:\Users\Jean-Claude\AppData\LocalLow\uTorrent
2015-10-07 13:47 - 2015-10-07 13:48 - 00001580 _____ C:\Windows\setupact.log
2015-10-07 13:47 - 2015-10-07 13:47 - 00000000 _____ C:\Windows\setuperr.log
2015-10-07 11:47 - 2015-10-08 10:52 - 00000000 ____D C:\Program Files\Mozilla Firefox
2015-10-07 10:10 - 2015-10-08 10:52 - 00001104 _____ C:\Windows\PFRO.log
2015-10-06 22:08 - 2015-10-08 12:20 - 00000000 ____D C:\Users\Jean-Claude\Desktop\almunecar
2015-10-06 16:59 - 2015-10-06 16:59 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2015-09-16 17:39 - 2015-09-16 17:39 - 00000000 ____D C:\Users\Jean-Claude\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Applications Chrome
2015-09-16 14:15 - 2015-09-20 17:50 - 00000000 ____D C:\Users\Jean-Claude\Desktop\Anciennes données de Firefox
2015-09-10 10:00 - 2015-08-13 16:15 - 00304640 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
2015-09-10 10:00 - 2015-08-13 16:15 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2015-09-10 09:59 - 2015-09-02 23:26 - 01402368 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2015-09-10 09:59 - 2015-09-02 23:26 - 01253376 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2015-09-10 09:58 - 2015-07-10 16:21 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2015-09-10 09:57 - 2015-09-02 23:26 - 00034304 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2015-09-10 09:57 - 2015-09-02 21:55 - 02067456 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2015-09-10 09:57 - 2015-09-02 21:54 - 00297472 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2015-09-10 09:57 - 2015-08-05 17:59 - 00602112 _____ (Microsoft Corporation) C:\Windows\system32\schedsvc.dll
2015-09-09 15:41 - 2015-09-10 11:56 - 00000000 ____D C:\Users\Jean-Claude\Desktop\archives mail
2015-09-09 15:02 - 2015-08-17 19:18 - 01814016 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-09-09 15:02 - 2015-08-17 19:17 - 12388352 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-09-09 15:02 - 2015-08-17 19:14 - 00367616 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2015-09-09 15:02 - 2015-08-17 19:13 - 09751040 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-09-09 15:02 - 2015-08-17 19:12 - 01139712 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-09-09 15:02 - 2015-08-17 19:12 - 01129472 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-09-09 15:02 - 2015-08-17 19:11 - 01427968 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2015-09-09 15:02 - 2015-08-17 19:11 - 00422400 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-09-09 15:02 - 2015-08-17 19:10 - 01804288 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-09-09 15:02 - 2015-08-17 19:10 - 00718848 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2015-09-09 15:02 - 2015-08-17 19:10 - 00607744 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2015-09-09 15:02 - 2015-08-17 19:10 - 00353792 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2015-09-09 15:02 - 2015-08-17 19:10 - 00231936 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2015-09-09 15:02 - 2015-08-17 19:10 - 00223232 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2015-09-09 15:02 - 2015-08-17 19:10 - 00176640 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2015-09-09 15:02 - 2015-08-17 19:10 - 00142848 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2015-09-09 15:02 - 2015-08-17 19:10 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2015-09-09 15:02 - 2015-08-17 19:10 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2015-09-09 15:02 - 2015-08-17 19:10 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2015-09-09 15:02 - 2015-08-17 19:10 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2015-09-09 15:02 - 2015-08-17 19:10 - 00010752 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2015-09-09 15:02 - 2015-08-17 19:09 - 02382848 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2015-09-08 16:17 - 2015-10-08 14:15 - 00000032 _____ C:\Windows\system32\Eu(12-20141222).OD
2015-09-08 15:22 - 2015-09-08 15:22 - 02662704 _____ (Google) C:\Users\Jean-Claude\Downloads\gpautobackup_setup.exe
2015-09-08 15:10 - 2015-09-08 15:10 - 00001902 _____ C:\Users\Public\Desktop\EaseUS Todo Backup Home 8.0 Trial.lnk
2015-09-08 15:10 - 2015-09-08 15:10 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EaseUS Todo Backup Home 8.0
2015-09-08 15:10 - 2014-12-15 00:58 - 00189992 _____ (CHENGDU YIWO Tech Development Co., Ltd) C:\Windows\system32\Drivers\EuFdDisk.sys
2015-09-08 15:10 - 2014-12-15 00:58 - 00051752 _____ (CHENGDU YIWO Tech Development Co., Ltd) C:\Windows\system32\Drivers\eubakup.sys
2015-09-08 15:10 - 2014-12-15 00:58 - 00041512 _____ C:\Windows\system32\Drivers\EUBKMON.sys
2015-09-08 15:10 - 2014-12-15 00:58 - 00015912 _____ (CHENGDU YIWO Tech Development Co., Ltd) C:\Windows\system32\Drivers\eudskacs.sys
2015-09-08 15:06 - 2015-09-08 15:06 - 00000000 ____D C:\Program Files\EaseUS
2015-09-08 15:06 - 2014-12-15 01:03 - 00019496 _____ (CHENGDU YIWO Tech Development Co., Ltd) C:\Windows\system32\fbnative.exe
2015-09-08 15:02 - 2015-09-08 15:04 - 97090848 _____ (CHENGDU YIWO Tech Development Co., Ltd ) C:\Users\Jean-Claude\Downloads\tbh_trial.exe
==================== Un mois - Modifiés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2015-10-08 15:01 - 2015-01-28 14:39 - 00000000 ____D C:\Users\Jean-Claude\AppData\Roaming\uTorrent
2015-10-08 14:54 - 2015-01-22 14:43 - 00001002 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-10-08 14:52 - 2006-11-02 14:47 - 00004112 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
2015-10-08 14:52 - 2006-11-02 14:47 - 00004112 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
2015-10-08 14:50 - 2015-01-20 12:29 - 00001056 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-10-08 14:24 - 2015-08-24 16:19 - 00001184 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job
2015-10-08 13:37 - 2008-01-21 03:35 - 01787089 _____ C:\Windows\WindowsUpdate.log
2015-10-08 13:00 - 2015-08-17 16:05 - 00000000 ____D C:\Program Files\Common Files\3929cb63-cbbd-4b9c-8b92-a50fbd04e656
2015-10-08 12:59 - 2015-08-17 16:05 - 00000000 ____D C:\ProgramData\3929cb63-cbbd-4b9c-8b92-a50fbd04e656
2015-10-08 11:03 - 2015-01-20 12:30 - 00001999 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2015-10-08 10:57 - 2008-01-21 10:41 - 01613540 _____ C:\Windows\system32\PerfStringBackup.INI
2015-10-08 10:53 - 2015-02-15 11:44 - 00000000 ___RD C:\Users\Jean-Claude\Dropbox
2015-10-08 10:53 - 2015-02-14 13:39 - 00000000 ____D C:\Users\Jean-Claude\AppData\Roaming\Dropbox
2015-10-08 10:52 - 2015-08-24 16:19 - 00001180 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job
2015-10-08 10:52 - 2015-01-20 19:12 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service
2015-10-08 10:52 - 2015-01-20 12:29 - 00001052 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-10-08 10:52 - 2006-11-02 15:01 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2015-10-07 22:56 - 2006-11-02 15:01 - 00032590 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2015-10-07 14:24 - 2015-02-08 01:10 - 00000000 ____D C:\Users\Jean-Claude\AppData\Roaming\vlc
2015-10-06 16:59 - 2015-02-14 13:45 - 00000000 ____D C:\Program Files\Dropbox
2015-10-06 16:54 - 2015-01-22 14:43 - 00780488 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2015-10-06 16:54 - 2015-01-22 14:43 - 00142536 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2015-09-11 01:43 - 2015-01-20 12:29 - 00000000 ____D C:\Users\Jean-Claude\AppData\Local\Google
2015-09-10 10:34 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\rescache
2015-09-10 10:18 - 2006-11-02 14:47 - 00298328 _____ C:\Windows\system32\FNTCACHE.DAT
2015-09-10 10:15 - 2006-11-02 14:37 - 00000000 ____D C:\Program Files\Windows Journal
2015-09-10 10:15 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\fr-FR
2015-09-10 10:02 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\Microsoft.NET
2015-09-10 09:55 - 2015-01-17 21:43 - 00000000 ____D C:\Windows\system32\MRT
==================== Fichiers à la racine de certains dossiers =======
2015-01-17 19:18 - 2015-05-01 11:58 - 0000680 _____ () C:\Users\Jean-Claude\AppData\Local\d3d9caps.dat
2015-01-20 11:48 - 2015-09-03 11:54 - 0025600 _____ () C:\Users\Jean-Claude\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2015-05-01 11:59 - 2015-05-01 11:59 - 0000000 _____ () C:\Users\Jean-Claude\AppData\Local\{9D0BE9B0-3CD9-4EB8-9602-2C2B2E1EE17B}
2015-01-28 23:47 - 2015-01-31 17:17 - 0018817 _____ () C:\ProgramData\hpzinstall.log
Certains fichiers dans TEMP:
====================
C:\Users\Jean-Claude\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpjaqpyc.dll
==================== Bamital & volsnap =================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
C:\Windows\explorer.exe => Le fichier est signé numériquement
C:\Windows\system32\winlogon.exe => Le fichier est signé numériquement
C:\Windows\system32\wininit.exe => Le fichier est signé numériquement
C:\Windows\system32\svchost.exe => Le fichier est signé numériquement
C:\Windows\system32\services.exe => Le fichier est signé numériquement
C:\Windows\system32\User32.dll => Le fichier est signé numériquement
C:\Windows\system32\userinit.exe => Le fichier est signé numériquement
C:\Windows\system32\rpcss.dll => Le fichier est signé numériquement
C:\Windows\system32\dnsapi.dll => Le fichier est signé numériquement
C:\Windows\system32\Drivers\volsnap.sys => Le fichier est signé numériquement
LastRegBack: 2015-10-08 10:59
==================== Fin de FRST.txt ============================